attack.su - robtex.com

attack.su

DNSSECโš ๏ธ Not signed
A2400:52e0:1a04::1310:1๐Ÿ‡ธ๐Ÿ‡ฎ BunnyCDN2400:52e0:1a04::/48 BUNNYWAY, informacijske storitve d.o.o Cesta komandanta Staneta 4A โš  Not in HTTPS hints
A37.19.207.37๐Ÿ‡บ๐Ÿ‡ธ CDN7737.19.206.0/23 -ASH โš  Not in HTTPS hints
NSkiki.bunny.net โญ
A2400:52e0:fff0::1๐Ÿ‡ธ๐Ÿ‡ฎ BunnyCDN2400:52e0:fff0::/48 BUNNYWAY, informacijske storitve d.o.o Cesta komandanta Staneta 4A
A91.200.176.1๐Ÿ‡ธ๐Ÿ‡ฎ BunnyCDN91.200.176.0/24
PTRkiki.bunny.net
NScoco.bunny.net
A2400:52e0:fff2::1๐Ÿ‡ธ๐Ÿ‡ฎ BunnyCDN2400:52e0:fff2::/48 BUNNYWAY, informacijske storitve d.o.o Cesta komandanta Staneta 4A
A109.104.147.1๐Ÿ‡ธ๐Ÿ‡ฎ BunnyCDN109.104.147.0/24
PTRcoco.bunny.net
MXinbound-smtp.eu-west-1.amazonaws.com โญ
A18.200.203.69๐Ÿ‡ฎ๐Ÿ‡ช Amazon18.200.0.0/16 EC2 DUB prefix
PTRec2-18-200-203-69.eu-west-1.compute.amazonaws.com
A54.76.31.185๐Ÿ‡ฎ๐Ÿ‡ช Amazon54.76.0.0/15 EC2 DUB prefix
PTRec2-54-76-31-185.eu-west-1.compute.amazonaws.com
A54.155.140.59๐Ÿ‡ฎ๐Ÿ‡ช Amazon54.155.0.0/16 EC2 DUB prefix
PTRec2-54-155-140-59.eu-west-1.compute.amazonaws.com
TXTfk-verify=dfc05e5f0cd3ca1fcd9ce76788be4894
TXTanypay-verification: d0e78116dbb4af7ab9f87d4f5d08
TXTmailru-domain: rayUYPbyxwE1Vag0
HTTPSHTTP/2, HTTP/1.1 โš  2 unhinted๐Ÿ“Œ 1 extra
IPv4 hints37.19.207.38
SOAkiki.bunny.nethostmaster@bunny.net serial=2021854642

su

DNSSEC๐Ÿ”’ Signed (DS record present)
NSa.dns.ripn.net โญ
NSb.dns.ripn.net
NSd.dns.ripn.net
NSe.dns.ripn.net
NSf.dns.ripn.net
SOAa.dns.ripn.nethostmaster@ripn.net serial=650209719

Same first word

Similar names

DNS History

7 records (5 active, 2 former)

NScoco.bunny.netkiki.bunny.netMXinbound-smtp.eu-west-1.amazonaws.comA2400:52e0:1a04::1310:137.19.207.37127.0.0.137.19.207.38
โ—NScoco.bunny.net2026-04-20 โ†’ 2026-07-05 ยท 2 obs
โ— 2026-04-20 08:43:46
โ— 2026-07-05 01:25:38
โ—NSkiki.bunny.net2026-04-20 โ†’ 2026-07-05 ยท 2 obs
โ— 2026-04-20 08:43:46
โ— 2026-07-05 01:25:38
โ—MXinbound-smtp.eu-west-1.amazonaws.com2026-04-20 โ†’ 2026-07-05 ยท 2 obs
โ— 2026-04-20 08:43:46
โ— 2026-07-05 01:25:38
โ—‹A127.0.0.12026-04-20 โ†’ 2026-04-24 ยท 4 obs
โ— 2026-04-20 08:43:46
โ— 2026-04-24 17:31:34
โ—‹ 2026-07-02 18:37:02
โ—‹ 2026-07-05 01:25:38
โ—A2400:52e0:1a04::1310:12026-07-02 โ†’ 2026-07-05 ยท 5 obs
โ—‹ 2026-04-24 17:31:34
โ— 2026-07-02 18:37:02
โ—‹ 2026-07-04 19:55:38
โ— 2026-07-05 01:25:36
โ— 2026-07-05 01:25:38
โ—A37.19.207.372026-07-02 โ†’ 2026-07-05 ยท 5 obs
โ—‹ 2026-04-24 17:31:34
โ— 2026-07-02 18:37:02
โ—‹ 2026-07-04 19:55:38
โ— 2026-07-05 01:25:36
โ— 2026-07-05 01:25:38
โ—‹A37.19.207.382026-07-04 โ†’ 2026-07-04 ยท 4 obs
โ—‹ 2026-07-02 18:37:02
โ— 2026-07-04 19:55:38
โ—‹ 2026-07-05 01:25:36
โ—‹ 2026-07-05 01:25:38

๐Ÿ” DNS Trace

๐Ÿ“‹ Delegation Chain

ZoneNameserversGlue
sua.dns.ripn.net, b.dns.ripn.net, d.dns.ripn.net, e.dns.ripn.net...-
attack.sucoco.bunny.net, kiki.bunny.net-

โœ… Authoritative Response

Server:109.104.147.1

NS records: coco.bunny.net, kiki.bunny.net

๐Ÿ”’ DNSSEC Status

โš ๏ธ Insecure (no DNSSEC)

No DS record for attack.su (unsigned zone)

โฑ๏ธ Timing

Total: 479ms | Queries: -

๐Ÿ“„ Records

TypeCountSample Data
A137.19.207.37
AAAA12400:52e0:1a04::1310:1
NS2kiki.bunny.net, coco.bunny.net
MX1inbound-smtp.eu-west-1.amazonaws.com (pr
TXT3fk-verify=dfc05e5f0cd3ca1fcd9ce76788be48, anypay-verification: d0e78116dbb4af7ab9f...
HTTPS1{"priority":1,"target":".","alpn":["h2",
SOA1kiki.bunny.net hostmaster.bunny.net

Analysis

IP Addresses

attack.su has two IP addresses: 37.19.207.37 and 2400:52e0:1a04::1310:1

Among the host names that share IP numbers with attack.su are thisislegacy.com, entrepreneuric.com, sadboy.b-cdn.net and two others.

Name Servers

DNS delegation for attack.su points to two name servers: coco.bunny.net and kiki.bunny.net.

attack.su has the same name server delegation as a number of other domains, such as lasedentaire.fr, marin.net.ve, skbk.net and two more.

There is at least partial name server overlap between attack.su and other domains โ€” lasiv.com, webgala.com, condoup.com and two more among them.

These name servers frequently co-occur with the name servers buy-domain.brandsly.com and for-sale.brandsly.com.

coco.bunny.net directs to 109.104.147.1 and 2400:52e0:fff2::1. kiki.bunny.net directs to 91.200.176.1 and 2400:52e0:fff0::1. Each host name carries two IP addresses.

Mail Servers

attack.su routes its mail through a single mail server, inbound-smtp.eu-west-1.amazonaws.com.

attack.su has the same mail server arrangement as a number of other domains, for example mx1.aplitrak.com, fliesenlegerfrancke.de, dtw.awsapps.com and two more.

attack.su shares at least some of its mail servers with other domains โ€” for example 220energia.ee, autocomm.io, command.verkada.com and two more.

inbound-smtp.eu-west-1.amazonaws.com has three IP addresses: 18.200.203.69, 54.76.31.185 and 54.155.140.59.